First observed in 2013, njRAT (also known as Bladabindi) is a .NET-based remote access trojan that has undergone multiple revisions to improve its capability.
njRAT can be delivered through a number of methods, including; spam or phishing campaigns, drive-by-download, watering hole attacks or disguised as a legitimate application.
njRat may run silently in the background and may not provide any indication of infection to the user. Backdoor.NJRat may also disable Antivirus programs and other Microsoft Windows security features.
Once installed on a device, njRAT has the capability to:
- download and execute files
- collect system information
- obtain and transmit passwords
- edit registry keys
- create and delete processes
- open a chat window
URL’s To Block
Email Addresses To Block
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.